What is frequency at which redlock scans cloud accounts ?

I am curious to know the frequency at which redlock scans /make api calls to cloud accounts, I undersatnd once policy is created and alert rule is configured & also wanted to know if there is any feature in redlock to capture the exact details api calls made. However I have been configured redlock service with my multiple AWS accounts and I also see the billing for my account are higher than expected.I need this information for cost optimizatoin in aws accounts as i could see thousand of redlock api calls in the aws account that has been onboarded on redlock.

It would be great help if anyone can provide information related my above query. Thanks in advance.

Re: What is frequency at which redlock scans cloud accounts ?

It depends on the data source (configuration metadata, events or flow logs). For configuration metadata, we pull the data about every 45 minutes but this can vary depending on number of objects, rate limits imposed by the cloud service providers and latency. When an account is first onboarded, you will see a large amount of API calls since this is the first time we have seen any of the data so we pull more. As time goes on, we pull less since we have an established pattern of data to work from (there are some caveats here).

Re: What is frequency at which redlock scans cloud accounts ?

It depends on the data source (configuration metadata, events or flow logs). For configuration metadata, we pull the data about every 45 minutes but this can vary depending on number of objects, rate limits imposed by the cloud service providers and latency. When an account is first onboarded, you will see a large amount of API calls since this is the first time we have seen any of the data so we pull more. As time goes on, we pull less since we have an established pattern of data to work from (there are some caveats here).

Re: What is frequency at which redlock scans cloud accounts ?

Just a quick check, would that be possible to share a rough estimation on an basis how much is charged on an account level when ever redlock makes a scan to identify the vulnarabilities/violated resources.

As confirmed by you, I believe every 45 minutes it does a scan on an average. So just wanted to understand.